for those googling to figure out there are new network config tools and little to no documentation on them, here is some help.
Code: Select all
ip addr
(I know, please don't jump off a bridge. and don't ask my why someone wasn't kind enough to make a script that says, sorry ifconfig is no longer used, use this instead thank you)
Code: Select all
systenctl stop firewalld
*** UPDATE 2 *** this dose work. just there is another issue with sshd ... to test this run
Code: Select all
iptables -L -v
turns off the crazy new firewall. I know I can her admins screaming, but hey most installs I do are behind firewalls and don't need any of there own. why bother with the over head? and why in the good lords name is there a network manager in centos ?? this isn't Mac. we are building servers that NEVER EVER NEVER EVER EVER EVER change networks ever.
now if your a paranoid American and what to keep your firewall (not a bad idea, to keep it really) and poke a whole for a custom sshd port
I *think* this works
# firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p tcp --dport <CUSTOM SSHD PORT NUMBER> -j ACCEPT
but I don't dare test it for I'll loose connection to my servers. maybe someone will post what todo? (and maybe the centOS how to's will get updated?)
***UPDATE 2***
to add a custom sshd port (and keep firewall up):
Code: Select all
yum install mc
get to /usr/lib/firewalld/services
then hit tab to switch window panes and the other window pane to /etc/firewalld/services
tab back to the /usr/lib one and highlight that ssh file hit "f5" then ok
now on the /etc pane highlight that ssh file and hit "f4"
add yo custom port and save (watch i don't even have to say what do to, mc is that self explanatory, be jelious vi and emacs)
now :
Code: Select all
systemctr restart firewalld
UPDATE 3 !!! (i've been doing learnings!)
so turns out if you don't have semange, you can still have selinux ( security softwares)
goto (crap all my cent os boxes are off) well i think /etc/selinux
and edit the conf file to "disableed"
7-22-14, I've been learned, below is WRONG and left here for historical purposes
as of 7-20-2014, sshd in centos 7 doesn't seen to work with custom ports. so to get it to start
pkill sshd
now start it manually
/sbin/sshd
working (but don't do it, instead disable selinux, maybe i'll figure out how to make them all friends)
as for those who have life-time-energy to burn here are some sites I found with info
https://fedoraproject.org/wiki/Firewall ... _FirewallD
https://access.redhat.com/documentation ... walls.html
http://manned.org/firewall-cmd/f7a55310
good luck